Information Security Project Leader
Aside from the exciting range of opportunities to make a real difference to your community and county, South Dublin County Council is a great place to work and for many people already provides an attractive career and working environment. Working for South Dublin County Council will give you the opportunity to gain experience at the heart of local government and to develop your career in a diverse work environment. We recognise the value of our employees and can offer a diverse range of job and career options, plenty of scope for career progression, structured training and personal development. We also offer flexible working arrangements, a positive work environment, training and development opportunities, a defined career path, and the opportunity to make a difference.
The role
We are seeking an Information Security Project Leader to spearhead the Council’s cyber security efforts and ensure our digital assets are protected from the ever-evolving cyber threat landscape. Supported by the wider department, the successful candidate will lead a modest team of dedicated cybersecurity professionals whose actions will directly impact the Council’s resilience against cyberattacks, safeguarding customer data and the Council’s standing. The successful candidate will oversee the implementation and maintenance of the Council’s Information Security Management System, including its security protocols, risk assessments, training requirements, policy development, and incident response.
The Information Security Project Leader will oversee technical responsibilities related to the technologies detailed below. Such may include developing security strategies, maintaining Information Security Policies, conducting penetration testing, managing security technologies, ensuring compliance with legislation, and preparing disaster recovery plans.
The role requires a deep understanding of the organisation's security architecture and infrastructure including Microsoft Security Platforms, Juniper Networks, ClearPass, CryptoSpike, and QRadar. Experience with these technologies will be advantageous to potential candidates.
Candidates must demonstrate strong soft skills, including fostering collaboration, adapting to changing priorities, communicating complex information, providing customer-centric support, managing time effectively, and inspiring their team. These skills are essential for leading the cybersecurity team and driving continuous improvement. The ideal candidate will combine both technical expertise and a human touch, acting as both a team leader and player who can collaborate and adapt in a fast-paced environment.
This is an exceptional opportunity for a cybersecurity professional to move to the next level of their career, to lead a team, and make a lasting impact on the security of all that the Council holds digitally.
Salary
€58,252 - €75,728 (LSI 2)
Hours of Work
The successful candidates’ normal hours of work will be 35 hours per week. The Council reserves the right to alter your hours of work from time to time.
Annual Leave
Annual leave entitlement for this position is 30 days.
Only applications received electronically through the Council’s e-Recruitment system will be accepted and must be received no later than midnight on Thursday, 20th February 2025.
Qualifications
Character
Candidates will be of good character.
Health
Each candidate must be in a state of health such as would indicate a reasonable prospect of ability to render regular and efficient service.
Essential Education, Training, Experience
Candidates must have on the latest date for receipt of completed applications -
1. A qualification at Level 8 on the National Framework of Qualifications (NFQ) major award (i.e. honours degree), in a relevant computing discipline and at least 4 years directly relevant, recent ICT hands-on experience from your employment to date.
2. A qualification at Level 8 on the National Framework of Qualifications (NFQ) major award (i.e. honours degree), or higher, with computing taken in the final year and at least 5 years directly relevant, recent ICT hands-on experience from your employment to date.
3. A qualification at Level 7 on the National Framework of Qualifications (NFQ) major award (i.e. ordinary degree), in a relevant computing discipline and at least 5 years directly relevant recent ICT hands-on experience from your employment to date.
4. A Level 6 NFQ major award qualification in a relevant computing discipline and at least 6 years directly relevant recent ICT hands-on experience from your employment to date.
AND have a satisfactory knowledge of public service organisation or the ability to acquire such knowledge.
Relevant ICT hands-on experience should include, but is not limited to: managing delivery of digital solutions, enterprise architecture, software and applications development projects involving a range of technologies and platforms covering web development, data management, database administration, business analysis/discovery, business intelligence and data analytics, DevOps, enterprise architecture, technical infrastructure service design and delivery, server and client operating systems and architecture stacks, telecommunications and networking infrastructure delivery support, technical support, ICT service management, operations and server support, ICT/cyber security, mobile device management, virtualisation delivery support, database and application support, cloud computing, etc.
Desirable Education, Training, Experience
Level 8 (as per National Framework of Qualifications) Degree/Higher Diploma in such areas as Cyber Security and/or Computer Science.
The ideal candidate for the Information Security Project Leader role will be an experienced professional with a strong grasp of enterprise security technologies, including firewalls, XDR, SOC/SIEM, and incident response.
Their technical expertise will enhance the organisation's security posture and demonstrate adaptability to evolving systems.
This candidate will exhibit outstanding leadership skills, fostering collaboration and communication within the team. They must adapt to changing priorities and effectively convey complex technical information to both technical and non-technical stakeholders, facilitating informed decision-making.
A focus on people is crucial, with the candidate expected to provide proactive support and manage multiple projects efficiently. They will inspire and mentor their team, promoting professional growth and a culture of innovation and continuous learning.
The candidate should have a comprehensive understanding of the cybersecurity landscape, staying updated on trends and regulatory requirements. Familiarity with standards like ISO 27001 and NIST will help align the organisation’s security practices with best practices and compliance.
The Information Security Project Leader will develop and implement security strategies that align with organisational goals, conducting risk assessments and creating mitigation plans to address vulnerabilities while balancing immediate needs with long-term objectives.
Proficiency in SIEM tools and experience with ransomware protection solutions are essential. The candidate should also be skilled in access control management, particularly with 801.1x authentication, to enhance network security.
Overall, the ideal candidate will significantly contribute to the organisation’s security resilience through a combination of technical skills and leadership qualities.
They will play a vital role in shaping the future of the organisation’s cybersecurity initiatives. We seek a dedicated professional ready to make a lasting impact and drive our cybersecurity efforts forward.
Key Competencies / Skills
* Management and Change
* Delivering results
* Performance management
* Personal effectiveness
* Local government knowledge and understanding
Candidates are requested to give an example of a situation which highlights the behaviour, skills and attitude that underpin effective performance in these areas and which demonstrates their suitability to meet the challenges of this role. Candidates should ensure the example used clearly demonstrates their ability in this area and that the scale and scope of the example given is appropriate to the post and level of the post.
Duties
The duties shall include, but are not limited to the following:
Effective Team Leadership
Set a clear vision and strategy for the team while fostering a supportive work environment. Manage team performance, development, and recognition, delegate tasks effectively, lead during crises, and promote continuous improvement.
Cybersecurity Infrastructure Management
Administer and support the organisation's cybersecurity infrastructure. Advise on network device configurations, monitor for suspicious activity, resolve security vulnerabilities, and implement security measures to protect digital services.
Monitoring and Threat Analysis
Overseeing the monitoring of security systems and networks for suspicious activity, conduct penetration testing and threat analysis, and ensure that appropriate measures are in place to protect the organisation's assets.
Incident Response and Forensic Analysis
Lead the incident response process by identifying and reporting suspicious activity, containing incidents, and conducting post-incident analysis. Perform digital forensic analysis to collect and analyse evidence related to cybersecurity incidents, using strong problem-solving skills.
Information Security Management System (ISMS) Implementation
Lead the implementation and maintenance of the ISMS, developing security controls and maintaining incident records. Ensure the ISMS aligns with industry best practices by applying frameworks and standards like NIST, ISO, and NIS2.
Collaborative Working Relations
Work closely with the Department Head, Senior ICT Team leaders, the Information Security Group, and management to advise on security matters and uphold the Council's Information Security Policy.
Security Documentation and Solution Development
Help develop and maintain security documentation, including policies and incident response plans. Participate in designing and implementing new cybersecurity solutions, evaluate security products, and provide training and support.
Continuous Learning and Collaboration
Stay updated on the latest cybersecurity threats and trends, sharing knowledge within the organisation. Provide first-line support to users and collaborate with cross-functional teams to enhance the overall security posture through risk assessments and awareness campaigns.
These duties are indicative rather than exhaustive and are carried out under general guidance.
#J-18808-Ljbffr